Download Plugins and Themes from Dashboard < 1.8.6 – Authenticated (Admin+) Arbitrary File Download | CVE 2024-35162 | Plugin Vulnerabilities

Description

The Download Plugins and Themes in ZIP from Dashboard plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.8.5 via the download_theme function. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive information.

Affects Plugins

download-plugins-dashboard

Fixed in 1.8.6

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/9adfc632-2e47-4fea-ad87-41840cdab225

Classification

Type

LFI

OWASP top 10

CWE

CVSS

Miscellaneous

Original Researcher

Gen Sato

Verified

No

WPVDB ID

1e971d31-4319-4ab4-9365-43cbe4310a01

Timeline

Publicly Published

2024-05-17 (about 2 years ago)

Added

2024-06-06 (about 1 year ago)

Last Updated

2024-06-06 (about 1 year ago)

Other

Published

Title

Published

2025-11-07

Title

WPFunnels < 3.6.3 - Authenticated (Administrator+) Arbitrary File Deletion via Path Traversal

Published

2026-04-16

Title

JetBackup < 3.1.20.3 - Authenticated (Administrator+) Arbitrary Directory Deletion via Path Traversal in 'fileName' Parameter

Published

2023-12-27

Title

JVM rich text icons < 1.2.7 - Subscriber+ Arbitrary File Deletion

Published

2026-05-04

Title

Forminator < 1.52.2 - Unauthenticated Arbitrary File Read via 'upload-1[file][file_path]' Parameter

Published

2024-10-14

Title

WordPress Gallery Plugin – Limb Image Gallery <= 1.5.7 - Authenticated (Subscriber+) Arbitrary File Download